CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

333 matches found

Prion•added 2018/05/28 2:29 p.m.•11 views

Unrestricted file upload

PHP Scripts Mall Naukri Clone Script through 3.0.3 allows Unrestricted Upload of a File with a Dangerous Type in editresumedet.php, as demonstrated by changing .docx to .php...

6.5CVSS8.6AI score0.00381EPSS

Exploits1References1Affected Software1

OSV•added 2018/05/28 2:29 p.m.•2 views

CVE-2018-11514

PHP Scripts Mall Naukri Clone Script through 3.0.3 allows Unrestricted Upload of a File with a Dangerous Type in editresumedet.php, as demonstrated by changing .docx to .php...

8.8CVSS5.8AI score

Exploits0References1

CVE•added 2018/05/28 2:0 p.m.•36 views

CVE-2018-11514

The CVE affects PHP Scripts Mall Naukri Clone Script (version 3.0.3 and earlier). The vulnerability resides in edit_resume_det.php, allowing Unrestricted Upload of a File with a Dangerous Type (e.g., renaming .docx to .php). This could enable an attacker to upload a malicious PHP file, potentiall...

8.8CVSS8.6AI score0.00381EPSS

Exploits1References1Affected Software1

NVD•added 2018/04/12 10:29 p.m.•8 views

CVE-2018-6903

PHP Scripts Mall Hot Scripts Clone Script Classified v3.1 uses the client side to enforce validation of an e-mail address, which allows remote attackers to modify a registered e-mail address by removing the validation code...

8.8CVSS8.7AI score0.00298EPSS

Exploits1References1

Cvelist•added 2018/04/12 10:0 p.m.•13 views

CVE-2018-6903

8.7AI score0.00298EPSS

Exploits1References1

Prion•added 2018/04/09 7:29 a.m.•10 views

Design/Logic Flaw

PHP Scripts Mall Match Clone Script 1.0.4 has XSS via the search field to searchbyid.php aka the "View Search By Id" screen...

4.3CVSS5.9AI score0.00296EPSS

Exploits5References2Affected Software1

OSV•added 2018/04/09 7:29 a.m.•3 views

CVE-2018-9857

PHP Scripts Mall Match Clone Script 1.0.4 has XSS via the search field to searchbyid.php aka the "View Search By Id" screen...

6.1CVSS5.8AI score0.00296EPSS

Exploits5References2

NVD•added 2018/04/09 7:29 a.m.•8 views

CVE-2018-9857

PHP Scripts Mall Match Clone Script 1.0.4 has XSS via the search field to searchbyid.php aka the "View Search By Id" screen...

6.1CVSS6.1AI score0.00296EPSS

Exploits5References2

CVE•added 2018/04/09 7:0 a.m.•53 views

CVE-2018-9857

CVE-2018-9857 concerns PHP Scripts Mall Match Clone Script 1.0.4. The vulnerability is a Cross-Site Scripting (XSS) flaw exposed via the searchbyid.php “View Search By Id” screen in the product’s search field. Attackers can inject arbitrary scripts, as demonstrated by PoCs in the linked exploit r...

6.1CVSS5.9AI score0.00296EPSS

Exploits5References2Affected Software1

CNVD•added 2018/04/09 12:0 a.m.•2 views

PHP Scripts Mall Match Clone Script Cross-Site Scripting Vulnerability

PHP Scripts Mall Match Clone Script is a matrimonial dating software from PHP Scripts Mall India. The program features live chat, privacy protection and member registration. A cross-site scripting vulnerability exists in PHP Scripts Mall Match Clone Script version 1.0.4. A remote attacker can...

6.1CVSS6.4AI score0.00296EPSS

Exploits5References1

Prion•added 2018/04/05 7:29 p.m.•13 views

Design/Logic Flaw

PHP Scripts Mall Redbus Clone Script 3.0.6 has XSS via the terfrom or tag parameter to results.php...

4.3CVSS6AI score0.0024EPSS

Exploits1References1Affected Software1

OSV•added 2018/04/05 7:29 p.m.•1 views

CVE-2018-9328

PHP Scripts Mall Redbus Clone Script 3.0.6 has XSS via the terfrom or tag parameter to results.php...

6.1CVSS5.8AI score

Exploits0References1

NVD•added 2018/04/05 7:29 p.m.•10 views

CVE-2018-9328

PHP Scripts Mall Redbus Clone Script 3.0.6 has XSS via the terfrom or tag parameter to results.php...

6.1CVSS6.1AI score0.0024EPSS

Exploits1References1

Cvelist•added 2018/04/05 7:0 p.m.•15 views

CVE-2018-9328

PHP Scripts Mall Redbus Clone Script 3.0.6 has XSS via the terfrom or tag parameter to results.php...

6.1AI score0.0024EPSS

Exploits1References1

CNVD•added 2018/02/27 12:0 a.m.•3 views

PHP Scripts Mall Alibaba Clone Script Cross-Site Scripting Vulnerability

PHP Scripts Mall Alibaba Clone Script is an e-commerce system from PHP Scripts Mall India. A cross-site scripting vulnerability exists in PHP Scripts Mall Alibaba Clone Script version 1.0.2. A remote attacker can exploit this vulnerability to inject arbitrary web script or HTML...

5.4CVSS6.4AI score0.00181EPSS

Exploits4References1

CNVD•added 2018/02/27 12:0 a.m.•1 views

PHP Scripts Mall Slickdeals/DealNews/Groupon Clone Script Cross-Site Scripting Vulnerability

PHP Scripts Mall Slickdeals/DealNews/Groupon Clone Script is a set of online group buying deal scripts from PHP Scripts Mall India. A cross-site scripting vulnerability exists in PHP Scripts Mall Slickdeals/DealNews/Groupon Clone Script version 3.0.2. A remote attacker can exploit this...

5.4CVSS6.3AI score0.00181EPSS

Exploits5References1

CNVD•added 2018/02/26 12:0 a.m.•1 views

PHP Scripts Mall Multi Language Olx Clone Script Cross Site Scripting Vulnerability

PHP Scripts Mall Multi Language Olx Clone Script is a set of PHP based scripts for multilingual information publishing websites from PHP Scripts Mall, India. A cross-site scripting vulnerability exists in PHP Scripts Mall Multi Language Olx Clone Script version 2.0.6. A remote attacker can exploi...

6.1CVSS6AI score0.00198EPSS

Exploits3References1

CNVD•added 2018/02/26 12:0 a.m.•1 views

PHP Scripts Mall Facebook Clone Script Cross-Site Scripting Vulnerability

PHP Scripts Mall Facebook Clone Script is a set of PHP based social networking site scripts by PHP Scripts Mall India. A cross-site scripting vulnerability exists in PHP Scripts Mall Facebook Clone Script. A remote attacker can exploit this vulnerability to inject arbitrary web script or HTML...

5.4CVSS6.3AI score0.00181EPSS

Exploits4References1

Prion•added 2018/02/23 1:29 p.m.•15 views

Cross site scripting

Cross Site Scripting XSS exists in PHP Scripts Mall Alibaba Clone Script 1.0.2 via a profile parameter...

3.5CVSS5.3AI score0.00181EPSS

Exploits4References1Affected Software1

OSV•added 2018/02/23 1:29 p.m.•2 views

CVE-2018-6868

Cross Site Scripting XSS exists in PHP Scripts Mall Slickdeals / DealNews / Groupon Clone Script 3.0.2 via a User Profile Field parameter...

5.4CVSS5.8AI score

Exploits0References1